Solved: Does SplunkBase Vet apps for Security issues befor...

khavildar · ‎11-29-2018

This is a generic question and my apologies if it has already been published somewhere, but I could not glean from my initial google searches.

Given the influx of supply chain attacks through code, am wondering if Splunkbase reviews sourcecode for malicious code before publishing here?

bec · ‎01-11-2019

If I read this right, according to the approval criteria (https://docs.splunk.com/Documentation/Splunkbase/splunkbase/Splunkbase/Approvalcriteria) it says that "The Splunkbase team evaluates your submitted content to ensure it meets the following..." One being a "check for malware/viruses" which is described as "run scanner software to check for viruses and malware." So though there isn't an abundance of details, it looks like the answer is yes.

View solution in original post

bec · ‎01-11-2019

If I read this right, according to the approval criteria (https://docs.splunk.com/Documentation/Splunkbase/splunkbase/Splunkbase/Approvalcriteria) it says that "The Splunkbase team evaluates your submitted content to ensure it meets the following..." One being a "check for malware/viruses" which is described as "run scanner software to check for viruses and malware." So though there isn't an abundance of details, it looks like the answer is yes.

Does SplunkBase Vet apps for Security issues before publishing?

Introducing the 2024 SplunkTrust!

Introducing the 2024 Splunk MVPs!

Splunk Custom Visualizations App End of Life